NEWS
January 2025
For the first time in over 11 years, significant changes are proposed to the Security Rule component of the Health Insurance Portability and Accountability Act (HIPAA). In a Proposed Rule published today, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) aims to address the massive spike in cybersecurity incidents and breaches involving protected health information, and the glaring compliance deficiencies observed by OCR related to the Security Rule.
The HIPAA Security Rule was created in the late 1990s and early 2000s in the age of the PalmPilot, dial-up internet, and much fewer cybersecurity threats, so OCR is “modernizing” the Security Rule to align with today’s security environment. The current Security Rule is also very flexible - lacking precise safeguard requirements in the regulations. These proposed changes signify a stark shift to more explicit and absolute mandates requiring ambulance services and their business associates to take a hard look at their existing security if implemented.
Comments to the Proposed Rule are due March 7, 2025. PWW is also monitoring another Proposed Rule issued in 2021 containing several proposed changes to the HIPAA Privacy Rule. OCR may issue a more extensive, consolidated “Omnibus Rule” containing both the Security and Privacy Rule updates simultaneously - stay tuned.
Major HIPPA Security Rule Updates Proposed
Social Security Fairness Act Signed into Law, Boosting Retirement Benefits for First Responders
President Joe Biden on Sunday signed into law a measure that boosts Social Security payments for current and former public employees, affecting nearly 3 million people who receive pensions from their time as teachers, firefighters, police officers and in other public service jobs.
Advocates say the Social Security Fairness Act rights a decades-old disparity, though it will also put strain on Social Security Trust Funds, which face a looming insolvency crisis.
Industry Insights
News Archive